Lucene search

RedhatCVE-2018-10916

HistoryAug 01, 2018 - 2:29 p.m.

CVE-2018-10916

2018-08-0114:29:00

CWE-20

redhat

web.nvd.nist.gov

309

cve

lftp

file integrity

ftp server

remote mirroring

security vulnerability

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:P/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

AI Score

6.2

Confidence

High

EPSS

0.005

Percentile

75.3%

JSON

It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim’s system.

Affected configurations

Nvd

Vulners

Node

lftp_projectlftpRange≤4.8.3

Node

canonicalubuntu_linuxMatch12.04esm

Node

opensuseleapMatch42.3

VendorProductVersionCPE
lftp_projectlftp*cpe:2.3:a:lftp_project:lftp:*:*:*:*:*:*:*:*
canonicalubuntu_linux12.04cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
opensuseleap42.3cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
lftp_project	lftp	*	cpe:2.3:a:lftp_project:lftp::::::::
canonical	ubuntu_linux	12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm:::
opensuse	leap	42.3	cpe:2.3:o:opensuse:leap:42.3:::::::*

CNA Affected

[
  {
    "product": "lftp",
    "vendor": "[UNKNOWN]",
    "versions": [
      {
        "status": "affected",
        "version": "up to and including 4.8.3"
      }
    ]
  }
]